Legal claims defining the scope of protection, as filed with the USPTO.
1. A method for secure communications between a user module and a computer system including at least a first server, comprising: (a) recording, by the computer system: (i) a first server private key associated with the first server for a digital signature algorithm, where the first server private key corresponds to a first server public key associated with the first server; (ii) a server certificate signed by a certificate authority separate from the computer system; (b) receiving, by the computer system, a first message from the user module, the first message including: (i) identification information regarding the user module, and (ii) a user module public key; (c) generating, in response to verifying the identification information, by the computer system: (i) a response for the user module, and (ii) a second server private key and a corresponding second server public key associated with the first server; (d) digitally signing, by the computer system, the response using the first server private key to form a digitally signed response; (e) generating, by the computer system, a mutually derived shared key using Elliptic Curve Diffie-Hellman based on at least: (i) the user module public key; and (ii) the second server private key; wherein the mutually derived shared key can be derived by the module based on at least: (iii) a user module private key associated with the user module public key; and (iv) the second server public key associated with the second server private key; (f) encrypting, by the computer system, the digitally signed response and the server certificate using the mutually derived shared key to form at least part of a transmission message; and (g) transmitting, from the computer system to the user module, the transmission message, wherein the user module is enabled to decrypt the transmission message using the mutually derived shared key and verify the digitally signed response in order to allow secure transfer of data between the user module and the computer system.
2. The method of claim 1 , wherein the user module comprises a wireless handset.
3. The method of claim 1 , wherein the user module comprises a mobile phone handset.
4. The method of claim 1 , wherein the user module comprises a tablet computer.
5. The method of claim 1 , wherein the user module comprises a laptop computer.
6. The method of claim 1 , wherein the user module comprises a payment terminal.
7. The method of claim 1 , wherein the user module comprises a tracking device.
8. The method of claim 1 , wherein the user module comprises a circuit board with a radio.
9. The method of claim 1 , wherein the computer system comprises a radio.
10. The method of claim 1 , wherein the computer system is operatively connected to a radio.
11. The method of claim 1 , wherein the computer system communicates with the user module via a wireless network.
12. The method of claim 11 , wherein the wireless network is a WiFi network.
13. The method of claim 11 , wherein the wireless network is a wireless wide area network.
14. The method of claim 11 , wherein the wireless network uses a Long Term Evolution Protocol.
15. The method of claim 11 , wherein the wireless network uses a Long Term Evolution Advanced Protocol.
16. The method of claim 11 , wherein the wireless network uses the Enhanced Data rates for GSM Evolution standard.
17. The method of claim 11 , wherein the wireless network communicates using internet protocols.
18. The method of claim 11 , wherein the wireless network communicates using IP packets.
Unknown
May 12, 2020
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.